Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Qi Xie,Guilin Wang,Fubiao Xia,Deren Chen

DOI: https://doi.org/10.1002/cpe.3058

2013-01-01

Concurrency and Computation Practice and Experience

Abstract:By integrating self-certified public-key systems and the designated verifier proxy signature with message recovery, Wu and Lin proposed the first self-certified proxy convertible authenticated encryption (SP-CAE) scheme and its variants based on discrete logarithm problem (DLP) in 2009. Though their schemes are claimed provably secure, we demonstrate that their schemes are existentially forgeable under adaptive chosen warrants, unconfidentiable and verifiable under adaptive chosen messages and designated verifiers. Then we propose a provably secure SP-CAE scheme in the random oracle model.

Jiacheng Zhou,Zhenhua Liu,Baocang Wang

DOI: https://doi.org/10.1002/nem.2304

2024-09-25

International Journal of Network Management

Abstract:We analyze the security of the first definitional framework of Updatable signature, which was proposed in PKC 2021 by Cini et al. (as the above image). We propose an improved updatable signature scheme that changes the generation mode of the update token (the details is shown below) to weaken it's power, and use the technique of indistinguishability obfuscation to make the token no‐directional key update and unidirectional signature update. Updatable signature (US) resists key compromise attacks and is integral in numerous fields that require authentication. However, previous US schemes granted excessive power to update token, which cannot achieve no‐directional key update. In this paper, we improve Cini et al.'s US scheme by weakening update token. The improvement lies in changing the mode of generating an update token, from the signer alone to the signer and the server cooperatively. Specifically, they first negotiate a secret value, which is then used by the signer to generate an update token. This mode ensures that only the entity who owns the secret value can use the update token to update a signature. Furthermore, we employ indistinguishability obfuscation to minimize information leakage through update token. These advancements make the improved updatable signature scheme achieve no‐directional key update and unidirectional signature update. Finally, we present an enhanced security model, where an adversary is permitted to freely corrupt update tokens and signing keys, except the signing key at challenge epoch, and then prove the improved scheme to be unforgeable based on CDH hardness.

computer science, information systems,telecommunications

Zhijian Liao,Qiong Huang,Xinjian Chen

DOI: https://doi.org/10.1186/s42400-022-00122-z

2022-10-03

Abstract:A forward-secure group signature (FSGS) ensures the unforgeability of signatures in the past time period despite signing secret key is leaked in the current time period. As we know, traditional FSGS schemes are mostly relying on number-theoretic assumptions unable to resist quantum attacks. Therefore, we present an efficient lattice-based fully dynamic (i.e. users can flexibly join or quit the group) forward-secure group signature (DFSGS) by combining an improved version of FSGS scheme proposed by Ling. Based on an efficient zero-knowledge argument, we construct argument of knowledge of the committed value and the plaintext that help with privacy protection. Our DFSGS scheme is proved to be anonymous and forward-secure traceable relying on short integer solution and learning with errors assumptions in random oracle model. Moreover, the lengths of group public key and signature of our DFSGS scheme have been improved, and the length of user secret key has no connection with the quantity of group members.

computer science, information systems, interdisciplinary applications, software engineering

LONG Qin,LI Bin,PAN Ai-Min

DOI: https://doi.org/10.3969/j.issn.1000-1220.2005.08.005

2005-01-01

Abstract:The leakage of the secret key is a most serious threat to present schemes of digital signature. Forward-secure signature is proposed to solve this kind of problem. The paper summarize and compare several related forward-secure signature schemes. Based on a simple forward security construction scheme, OpenPGP is extended effectively to provide forward-security which is compatible with the OpenPGP standard.

Huafeng Wu,Haiguang Chen,Qiang Zhou,Chuanshan Gao

DOI: https://doi.org/10.1109/snpd.2007.33

2007-01-01

Abstract:We present an efficient improvement of the strong RSA signature scheme [1], which is very similar to Fischlin sig nature [2]. Both two signatures are based on strong RSA assumption. In the original scheme, the signer has to choose a prime with prescribed length in signing phase. Except that, three generators of QRn should be chosen in the set-up phase. Our scheme removes or relaxes these restrictions. It only needs to choose two generators of QRn and an odd. Our scheme saves about 1/2 computational cost of the original scheme. Moreover, we propose a blind signature scheme and a partially blind signature scheme based on the basic scheme. To the best of our knowledge, it's the first time to propose such a blind signature scheme and a partially blind signature scheme based on strong RSA assumption.

Ping Zhang,Yamin Li,Muhua Liu,Youlin Shang,Zhumu Fu

DOI: https://doi.org/10.1155/2022/1977798

2022-04-13

Wireless Communications and Mobile Computing

Abstract:Aiming at the security problems of wireless communication network and the shortcomings of Elliptic Curve Digital Signature Algorithm (ECDSA), this paper designed a forward secure digital signature scheme and proved that the scheme has forward security and unforgeability in the random oracle model. Experimental simulations are done in this paper, and the results show that the proposed scheme has the highest efficiency compared with the ECDSA scheme and the three existing forward secure schemes. This scheme not only meets the forward security and protects the users’ privacies but also reduces the requirement of computing power of the user in the wireless communication network.

computer science, information systems,telecommunications,engineering, electrical & electronic

Simin Chen,Jiageng Chen

DOI: https://doi.org/10.1016/j.heliyon.2023.e14917

IF: 3.776

2023-03-28

Heliyon

Abstract:Group signatures allow users to sign messages on behalf of a group without revealing authority is capable of identifying the user who generated it. However, the exposure of the user's signing key will severely damage the group signature scheme. In order to reduce the loss caused by signing key leakage, Song proposed the first forward-secure group signature. If a group signing key is revealed at the current time period, the previous signing key will not be affected. This means that the attacker cannot forge group signatures regarding messages signed in the past. To resist quantum attacks, many lattice-based forward-secure group signatures have been proposed. However, their key-update algorithm is expensive since they require some costly computations such as the Hermite normal form (HNF) operations and conversion from a full-rank set of lattice vectors into a basis. In this paper, we propose the group signature with forward security from lattice. In comparison with previous works, we have several advantages: Firstly, our scheme is more effective since we only need to sample some vectors independently from a discrete Gaussian during the key-update algorithm. Secondly, the derived secret key size is linear instead of quadratic with the lattice dimensions, which is more friendly towards lightweight applications. Anonymous authentication plays an increasingly critical role in protecting privacy and security in the environment where private information could be collected for intelligent analysis. Our work contributes to the anonymous authentication in the post-quantum setting, which has wide potential applications in the IoT environment.

WANG Mingqiang,WANG Xiaoyun,ZHENG Shihui

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.23.014

2006-01-01

Abstract:The concept of fuzzy signatures allow two entities to produce two signatures in such a way that,from the point of view of any third party,both signatures are ambiguous with respect to the identity of signing party until an extra piece of information is released by one of the parties.This paper designs a new fuzzy signature scheme based on the discrete algorithm problem.From this concurrent scheme,it proposes a signature protocol in which the signature can be fairly exchanged between signers.

Wenyuan Liu,Zecui Xie,Jie Zhang,Baowen Wang,Yali Si

2011-01-01

Abstract:Recently, all of the identity-based generalized signcryption schemes were proved having no forward security, and can not guarantee the private key send-off after the leak of information. To resolve this problem, we introduce an identity-based generalized signcryption scheme with forward security by using the way of session key. At the same time, our scheme using multi-PKGs generates the private key to solve the problem of traditional key escrow. The private key is less dependent on the third part. Our scheme based on the bilinear Diffie-Hellman assumptions is secure against adaptive chosen cipher-text attacks in random oracle model. According to the multifunctional property of generalized signcryption, we propose a case that applies generalized signcryption scheme to a multifunctional E-mail system. © 2011 ISSN.

Juanli Sun,Junyi Wei,Ping Wei

DOI: https://doi.org/10.1109/iccsn.2011.6013641

2011-05-01

Abstract:Bsaed on certificateless public cryptosystem and forward-secure, a forward-secure certificateless proxy blind signature scheme was proposed. This new scheme is forward-secure by updating secret key frequently. We can reduce the loss of the key exposure problem. And it also overcame the problem of certificate management in the certificate-based public key cryptosystem and the inherent key escrow problem in the identity-based public key cryptosystem.

Hou Guibin,Liu Jiaomin,Liu Wenyuan,Si Yali

DOI: https://doi.org/10.1109/csnt.2012.114

2012-01-01

Abstract:Based on the Hess signature scheme, a new efficient ID-based verifiably encrypted signature scheme was proposed. The scheme had the less pairing operations, and adjudicator signed a guarantee to avoid refusing to extract the common signature when resolving conflicts, thereby exchange signature protocol's fairness was enhanced. Compared with the other schemes, the proposed scheme was more efficient. At last its security was proved in the random oracle model. The proposed scheme was proved to be security assuming the computing Diffie-Hellman problem was hard.

Jie Wang,Wenbin Li

2003-01-01

Abstract:A new mathematical problem-Decisional Relevant-RSA problem was introduced to construct a new signature scheme.It is simple and secure against adaptive chosen-message attacks.In addition its security proof is in the standard model.

Heng Guo,Kun Tian,Feng Liu,Zhiyong Zheng

2024-12-02

Abstract:At present, in lattice-based linearly homomorphic signature schemes, especially under the standard model, there are very few schemes with tight security. This paper constructs the first lattice-based linearly homomorphic signature scheme that achieves tight security against existential unforgeability under chosen-message attacks (EUF-CMA) in the standard model. Furthermore, among existing schemes, the scheme proposed in this paper also offers certain advantages in terms of public key size, signature length, and computational cost.

Cryptography and Security,Information Theory

Guo‐Cai Wang

2010-01-01

Abstract:Hash chains are widely used for entity authentication or data-origin authentication in the field of information safety.However,finite length of a Hash chain limits its implementation.A two-way authentication signature scheme based on self-updating Hash chains is proposed.To avoid the computing complexity of the traditional public key algorithm,the scheme adopts Hash function to perform the authentication signature and significantly improves the speed of execution.The scheme achieves the automatic and smooth self-updating of Hash chain during the authentication process,and realizes the purpose of infinite utilization.In combination with the two-way authentication mechanism,the scheme can effectively resist the attack of replay and go-between,and enhance the security of the scheme.

Jing Yang,Fang-Wei Fu

DOI: https://doi.org/10.48550/arXiv.2011.08648

2020-11-17

Abstract:Secret sharing was proposed primarily in 1979 to solve the problem of key distribution. In recent decades, researchers have proposed many improvement schemes. Among all these schemes, the verifiable multi-secret sharing (VMSS) schemes are studied sufficiently, which share multiple secrets simultaneously and perceive malicious dealer as well as participants. By pointing out that the schemes presented by Dehkordi and Mashhadi in 2008 cannot detect some vicious behaviors of the dealer, we propose two new VMSS schemes by adding validity check in the verification phase to overcome this drawback. Our new schemes are based on XTR public key system, and can realize $GF(p^{6})$ security by computations in $GF(p^{2})$ without explicit constructions of $GF(p^{6})$, where $p$ is a prime. Compared with the VMSS schemes using RSA and linear feedback shift register (LFSR) public key cryptosystems, our schemes can achieve the same security level with shorter parameters by using trace function. What's more, our schemes are much simpler to operate than those schemes based on Elliptic Curve Cryptography (ECC). In addition, our schemes are dynamic and threshold changeable, which means that it is efficient to implement our schemes according to the actual situation when participants, secrets or the threshold needs to be changed.

Cryptography and Security,Social and Information Networks

Xiaoguo Li,Tao Xiang,Peng Wang

DOI: https://doi.org/10.1016/j.jnca.2020.102755

IF: 7.574

2020-09-01

Journal of Network and Computer Applications

Abstract:<p>It is commonsense that the data should be encrypted by searchable encryption before being outsourced to the cloud for its confidentiality and availability. Most of existing studies focus on forward privacy, we initiate the study of forward unforgeability, which defines the time periods when files can be uploaded while the forward privacy defines the time periods when files can be queried. For example in log-files management, we should block the attackers from revising the logs of previous time periods. We find that forward unforgeability is helpful in dealing with the problem. However, it is still challenging to achieve forward unforgeability in case of searchable encryption. In this paper, we formalize the key exposure problem in keyword-field-free conjunctive keyword search (KFF-CKS) and define the forward unforgeability of KFF-CKS formally. Then we design a general framework where any forward unforgeable KFF-CKS scheme can be applied there for practical use. After that, we construct a novel KFF-CKS scheme with forward unforgeability (FU-KFF-CKS) under this framework. Furthermore, we formally prove the security properties of our FU-KFF-CKS under random oracle model and compare our construction with previous ones in a theoretical view. Finally, we conduct extensive experiments and the results validate the effectiveness and efficiency of the proposed FU-KFF-CKS.</p>

computer science, interdisciplinary applications, software engineering, hardware & architecture

Yan He,Baodong Qin,Wen Gao,Dong Zheng,Qianqian Zhao

DOI: https://doi.org/10.1155/2022/7494452

IF: 1.968

2022-11-17

Security and Communication Networks

Abstract:Forward-secure revocation is a powerful cryptographic technique to alleviate key exposure attacks on identity-based cryptosystems. In recent years, quantum computers have made some breakthroughs, so in the foreseeable future, existing cryptographic systems will be subject to quantum attacks. However, known forward-secure revocable identity-based signature (FS-RIBS) schemes were designed over bilinear pairing groups and may suffer from quantum computing attacks. To address this issue, this paper proposes a generic method to construct FS-RIBS schemes, taking (hierarchical) IBS schemes as a basic component. By instantiating it with some post-quantum (hierarchical) IBS schemes, e.g., lattice-based (hierarchical) IBS, we immediately obtain six FS-RIBS schemes under the hardness of the small integer solution problem, which is secure against quantum computing attacks.

computer science, information systems,telecommunications

Zhen Qin,Chen Yuan,Yilei Wang,Hu Xiong

DOI: https://doi.org/10.1016/j.ipl.2016.02.003

IF: 0.851

2016-01-01

Information Processing Letters

Abstract:ID-based signature enables users to verify signatures using only public identifier. Very recently, Rossi and Schmid (2015) [9] proposed two identity-based signature schemes along with the application to group communications. Unfortunately, by proposing concrete attack, we demonstrate that the former scheme is insecure against forgery attack, while the latter scheme has been totally broken in the sense that the signing key can be recovered from the valid signature easily.

WANG Yong,ZHU Yan-qin

DOI: https://doi.org/10.1007/0-387-34805-0_23

2011-01-01

Abstract:This paper presents a signature with shared verification scheme based on verifiable multi-secret sharing.The scheme effecitively overcomes the deficiencies of the previous schemes in terms of security.In the process of signature verification,validation group can prevent some members providing the faulted information.This can make verification failure.Because the scheme uses verifiable multi-secret sharing,it can verify many signatures when it makes once multi-secret sharing.It has higher efficiency compared with the previous schemes.